On Mon, Jul 23, 2007, nobody wrote: > On Mon, 23 Jul 2007 15:21:09 +0200 > "Dr. Stephen Henson" <[EMAIL PROTECTED]> wrote: > > > On Mon, Jul 23, 2007, nobody wrote: > > > > > > > > That isn't happening. I did create a password-protected private key > > > and none of the email clients ask for the password when using it. > > > > > > > Clients typically ask you for the password when they import the > > PKCS#12 file. They use that to decrypt the key and store it. > > Hi, this doesn't seem to be happening. Doesn't the client need a > password to decrypt the private key or does the export create the > private key in cleartext? I can use the key without ever giving a > password in either Thunderbird or Outlook. >
It depends on what commands you use. The 'pkcs12' utility prompts for an export password for this purpose. > > > > Once the key is decrypted and stored internally the client will use > > its own technique when deciding if and when to use a password to > > protect the key. > > That would be fine but I'm not getting that far. I suspect I'm missing > an option when I create the pkcs12 file with the private key or I did > something else wrong. How do I find out what I did wrong in exporting > the pkcs12 file? I'll be thankful for any suggestions where to look. > Thanks again. > It will ask you for the password only once the very first time the PKCS#12 file is imported. After that it is down to facilities of the program itself to decide what (if any) password to prompt for. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
